Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Unified Automation OPC UA C++ Demo Server 1.7.6-537 [with vendor rollup]. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of certificates. A crafted certificate can force the server into an infinite loop. An attacker can leverage this vulnerability to create a denial-of-service condition on the system. Was ZDI-CAN-17203.
CVSS Information
N/A
Vulnerability Type
不可达退出条件的循环(无限循环)
Vulnerability Title
Unified Automation OPC UA C++ Demo Server 安全漏洞
Vulnerability Description
Unified Automation OPC UA C++Demo Server是Unified Automation公司的一种用于工业自动化的机器对机器通信协议应用程序。 Unified Automation OPC UA C++ Demo Server 1.7.6-537版本存在安全漏洞,该漏洞源于精心制作的证书可以强制服务器进入无限循环,攻击者可以利用此漏洞可以在系统上创建拒绝服务条件。
CVSS Information
N/A
Vulnerability Type
N/A